I wanted to get some feedback on what kind of antivirus solutions are being used in the JAMF environment. We're currently using ESET Endpoint Antivirus but I'm not impressed with how it starts up at login.
Any feedback on what you're currently using in your environment and issues you've ran across.
We use ESET. Not overly happy with it, but it works. Be very careful using it with things like Filr, or Google Drive File Stream. As they scan for changed documents and sync them to the Mac, ESET sees the access and will scan the files. You can kiss good bye to processor performance then, and the Windows guys can stop blaming the Macs as it does the same to them too. It does much the same as a user logs in to the Mac, and can with some accounts with a lot of work take login times to 15 mins.
It does however work and find viruses and malware etc. You just have to be very careful to set it up right, so far it has taken us a couple of years to get to where we are.
I also, on our setup, dont get, the install an app that isnt the AV app. So that the Server can then install another App that is the one you want. Why not install one thing?
We've had our issues with ESET. Right now it's fairly stable. I've had to add some exceptions for specific file extensions like Adobe InDesign. The only gripe I have so far is that when ESET starts up when a user logs in, it overlays the ESET application settings right in the center of the desktop transparently. Some end users get confused on why they can't click any folders/files on the desktop. It takes awhile for ESET to recognize it needs to be minimized.
^^^What he said.
Symantec/Broadcom is one of those companies that might support a macOS update or upgrade months after its release, and not without issues.
Look for companies that are zero day ready. Symantec/Broadcom (and for that matter McAfee) are not and will never be ready.
Keep an eye on Jamf Protect. ;)
So we did a bake-off at the start of the year of some of the top players, and I had real access to their web portals and support forums. My conclusion is that right approach is best breed for each OS platform. A few big vendors their Mac client was clearing doing no more than the built in Apple security. A few vendors said they did more but key features didn't work like remediation making them worse than the Gatekeeper.
While I am not security expert I did get to "play one" for a few weeks, it was very clear to me that Jamf Protect was seeing real security threats that the other are missing. It's also clear that the Jamf Protect team are the 'thought leaders" in the macOS security space.
I'm not in the market for an A/V solution but I haven't been happy with ESET and I'm concerned about Big Sur coming up because kexts are going away and I have a really hard time getting the clients to install on new operating systems. I'd like to know if anyone compared Jamf Protect against ESET, I'd like something to take to my boss.